How to remove VKMusic.exe
- File Details
- Overview
- Analysis
VKMusic.exe
The module VKMusic.exe has been detected as Trojan.LoadMoney
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
cdae28255cc6736244a738c0bfea9d9b |
| Size: |
1 MB |
| First Published: |
2017-07-12 11:02:41 (7 years ago) |
| Latest Published: |
2019-11-05 06:27:53 (4 years ago) |
| Status: |
Trojan.LoadMoney (on last analysis) |
|
| Analysis Date: |
2019-11-05 06:27:53 (4 years ago) |
Overview
| %appdata%\funspace\vkmusic |
| %appdata%\funspace\shadow\vkmusic |
| %appdata%\funspace\shadow |
| %sysdrive%\!old\1\appdata\roaming\funspace\shadow |
| %appdata%\funspace |
| %sysdrive%\$recycle.bin\s-1-5-21-1237770463-2482151453-3082163701-1000\$r5uiwek\backup set 2015-09-01 121112\backup files 2015-09-01 121112\backup files 1.zip\c\users\жека\appdata\roaming\funspace\shadow |
| %sysdrive%\$recycle.bin\s-1-5-21-1237770463-2482151453-3082163701-1000\$r5uiwek\backup set 2015-09-01 121112\backup files 2015-09-01 121112\backup files 1.zip\c\users\жека\appdata\roaming\funspace |
| %sysdrive%\adwcleaner\quarantine\files\smblecmcntzogzhvctmapphxgugsmcvx\shadow |
| %sysdrive%\copy_c\pasha\appdata\roaming\funspace\shadow |
| %sysdrive%\recycler\s-1-5-21-1645522239-1960408961-682003330-500 |
| Windows 7 |
50.0% |
|
| Windows 10 |
26.9% |
|
| Windows 8.1 |
23.1% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x0013c0ae |
| MVID: |
0c3f9f47-5df0-4459-8c97-c507a5be3007 |
| Name |
Size of data |
MD5 |
| .text |
1286656 |
b86384fa6ecf92b93895f3869aa519be |
| .rsrc |
163328 |
5fec214c2b7694a140b7ee09f8142e8e |
| .reloc |
512 |
7e7281fe061e2aba9dc0ae40e36c2b0f |
